Role: Cybersecurity Operations Engineer – Threat Detection & Response
Salary: €65,000 – €75,000 per annum
Duration: Permanent
Location: Hybrid (Dublin-based)
Benefits:
- 25 days holiday + bank holidays
- Health cover
- Pension
- Shift allowances/on-call compensation
- Investment in cyber training
You will join a dynamic security operations team focused on threat detection, monitoring, and rapid incident response. Your role will be to identify and respond to potential security threats across networks, endpoints, and cloud services using tools such as SIEMs, EDRs, and threat intelligence platforms. By authoring detection rules, maintaining playbooks, and supporting live investigations, you will help to reduce risks, minimise dwell time, and protect the organisation from a constantly evolving threat landscape.
You should have prior experience in a SOC or security monitoring environment, with a strong grasp of incident response processes and cyber defence strategies. Skills in log analysis, threat hunting, and hands-on familiarity with tools like Splunk, Elastic, or Microsoft Sentinel are highly desirable. You will be expected to handle real-time alerts, collaborate with wider IT and security teams, and contribute to a continuous improvement mindset through post-incident reviews and automation. A passion for security and curiosity about emerging threats will serve you well in this high-impact role.
Responsibilities:
- Develop and fine-tune detection rules in SIEM (e.g. Splunk, Elastic)
- Investigate alerts and anomalies; lead incident response
- Create and update detection playbooks and runbooks
- Integrate threat intelligence into detection frameworks
- Work with cross-functional teams on remediation
- Assist in post-incident reviews and lessons learned
- Maintain response metrics and contribute to continuous improvement
Requirements:
- Experince in a SOC or security operations roles
- Experience with SIEM, EDR, NDR tools
- Strong understanding of incident response methodologies (e.g. SANS)
- Skills in network, endpoint, and cloud security technologies
- Familiarity with TI feeds and threat hunting
- Certifications such as CISSP, GCTI, GCIA are desirable
- Excellent analytical and communication skills
What to do next: If you’re interested in this role, click ‘apply now’. For more information and a confidential discussion on this role or other opportunities, contact Conor via email conor@tdtalent.ie